Agent Sharing Access Restriction Detector¶
Version: v2.0.0 | Status: live | Domain: Access & Identity | Tier: 2
Detects and remediates agent sharing configurations that violate zone-based security group policies.
Mapped Controls¶
Prerequisites¶
| Role | Requirement |
|---|---|
power-platform-admin |
Power Platform admin or Entra Global Admin for BAP Admin API access, Dataverse setup, and remediation flows. |
m365-admin |
Teams administrator or delegated permissions for adaptive card delivery and notification posting. |
Verification¶
Confirm fsi_agentsharingcompliances and fsi_approvedsecuritygrouppolicies are populated after a sharing scan and remediation test.
Documentation¶
| Document |
|---|
| Dataverse Schema |
| Flow Configuration |
| Prerequisites |
View source on GitHub { .md-button }